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Amendments to the Claims 

This listing of claims will replace all prior versions, and listings, of claims in 
the application: 

1 . (Original) A method comprising: 

transmitting a first request from a source entity to a trusted arbitrator, the first 
request relating at least in part to establishing a secure connection between the 
source entity and a target entity; 

establishing a secure connection between the source entity and the trusted 
arbitrator using a first encryption scheme in response to the first request; 

transmrtting a second request from a connection entity to the trusted 
arbitrator; 

transmitting a first response from the trusted arbitrator to the connection 
entity in response to the second request, the first response being associated at least 
in part with the first request; and 

establishing a secure connection between the trusted arbitrator and the 
connection entity using a second encryption scheme in response to the first 
response. 

2. (Original) The method according to claim 1 , wherein the tmsted arbitrator 
authenticates with the source entity before the secure connection using the first 
encryption scheme is established. 

3. (Original) The method according to claim 2, wherein the trusted arbitrator 
supports multiple authentication schemes and determines, before source entity is 
authenticated, whether a desired authentication scheme used by the source entity is 
supported. 
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4. (Original) The method according to claim 1 , wherein the connection entity 
authenticates with the trusted arbitrator before the secure connection using the 
second encryption scheme is established. 

5. (Original) The method according to claim 1 , wherein at least one among the 
second request and the first response conforms at least substantially to a Hypertext 
Transfer Protocol. 

6. (Original) The method according to claim 1 , wherein at least one among the 
first and second requests is directed to a Uniform Resource Locator associated with 
the trusted arbitrator. 

7. (Original) The method according to claim 1 , wherein during at least a part of a 
period between a time of the transmitting of the first request arKl a time of the 
transmitting of the first response, the first request is stored in an area associated 
with the connection entity in the trusted arbitrator. 

8. (Original) The method according to claim 1 , wherein if the connection entity 
does not receive the first response within a predetermined period of a time of the 
transmitting of the second request, the transmitting of the second request is 
repeated. 



3 



PAGE 6/19 * RCVD AT 6/9/2004 5:45:57 PM [Eastern DayUght Time] - 8VR:USPTO-EFXRF-1/0 * DNI8:8729306 * C8tD:503 684 3245 " DURATION <mm*ss):D8*10 



06/09/2004 14:48 FAX 503 684 3245 



BSTZ - LAKE OSWEGO 



(21007 



09/604,184 

9. (Original) A computer readable medium including computer readable 
instructions encoded thereon for: 

transmitting a first request from a source entity to a trusted arbitrator, tlie first 
request relating at least in part to a target entity; 

establishing a secure connection between the source entity and the trusted 
arbitrator using a first encryption scheme in response to the first request; 

transmitting a second request from a connection entity to the trusted 
arbitrator; 

transmitting a first response from the trusted arbitrator to the connection 
entity in response to the second request, the first response being associated at least 
in part with the first request; and 

establishing a secure connection between the trusted arbitrator and the 
connection entity using a second encryption scheme in response to the first 

10. (Original) The computer readable medium of claim 9, further comprising 
computer readable instruction encoded thereon for authenticating the source entity 
before the secure connection using the first encryption scheme is established. 

1 1 . (Original) The computer readable medium of claim 1 0, wherein the trusted 
arbitrator supports multiple authentication schemes and determines, before the 
source entity is authenticated, whether a desired authentication scheme used by the 
source entity is supported. 

12. (Original) The computer readable medium of claim 9, further comprising 
computer readable instruction encoded thereon for authenticating the trusted 
arbitrator before transmitting the first response, 

13. (Original) The computer readable medium of claim 9. wherein at least one 
among the second request and the first response conforms at least substantially to 
a Hypertext Transfer Protocol. 
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14. (Original) The computer readable rnedium of claim 9, wherein at least one 
among the first and second requests is directed to a Unifomri Resource Locator 
associated with the trusted arbitrator, 

15. (Original) The computer readable medium of claim 9, wherein during at least 
a part of a period between a time of the transmitting of the first request and a time of 
the transmitting of the first response, the first request is stored in an area associated 
with the connection entity in the trusted arbitrator 

1 6. (Original) The computer readable medium of daim 9, wherein if the 
connection entity does not receive the first response within a predetermined 
period of a time of the transmitting of the second request, the transmitting of 
the second request is repeated. 
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17. (Original) A system in a computer network having a target entity, a connection 
entity coupled to the target entity, and an access control mechanism coupled to the 
connection entity, the system comprising: 

a trusted arbitrator coupled to the access control mechanism; and 

a source entity coupled to the trusted arbitrator, wherein 

the trusted arbitrator receives a first request for establishing a secure 

connection from the source entity, the first request relating at least in part to the 

target entity, 

in response to the first request, a secure connection is established between 
the source entity and the trusted arbitrator using a first encryption scheme, 

the connection entity transmits a second request to the trusted arbitrator, 

in response to the second request, the trusted arbitrator transmits a first 
response to the connection entity, the first response being associated at least in part 
with the first request, and 

in response to the first response, a secure connection between the trusted 
arbitrator and the computer network is established using a second encryption 
scheme. 

18. (Original) The system according to claim 17, wherein the secure connection 
between the trusted arbitrator and the computer network is established between the 
trusted arbitrator and the connection entity. 

19. (Original) The system according to claim 17, wherein the secure connection 
between the trusted arbitrator and the computer network is established between the 
trusted arbitrator and the target entity. 

20. (Original) The system according to claim 17, wherein the trusted arbitrator 
authenticates with the source entity before the secure connection using the first 
encryption scheme is established. 
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21 . (Original) The system according to claim 20, wherein the trusted arbitrator 
authenticates the source entity by verifying identification information sent by the 
source entity. 

22. (Original) The system accordir^g to claim 20, wherein the trusted arbitrator 
supports multiple authentication schemes and determines, before authenticating the 
source entity, whether a desired authentication scheme used by the source entity is 
supported. 

23. (Original) The system according to claim 17, wherein an entity inside of the 
computer network authenticates with the tmsted arbitrator before the secure 
connection using the second encryption scheme is established. 

24. (Original) The system according to claim 23, wherein the trusted arbitrator 
supports multiple authentication schemes and determines, before being 
authenticated, whether a desired authentication scheme used by the computer 
network is supported. 

25. (Origineil) The system according to claim 17, wherein the first request is a 
query that conforms at least substantially to a Hypertext Transfer Protocol, and the 
first response is a response that conforms at least substantially to a Hypertext 
Transfer Protocol. 
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26. (Original) The system according to claim 1 7, wherein the access control 
mechanism is a firewall. 

27. (Original) The system according to claim 17, wherein the access control 
mechanism is a proxy server. 

28. (Original) The system according to claim 1 7, wherein the access control 
mechanism Is coupled to the trusted arbitrator at least in part through the Internet. 

29. (Currently amended) The system according to claim 1 7, wherein the 
femetesource entity is coupled to the trusted arbitrator at least in part through the 
Internet, 

30. (Original) The system according to claim 1 7, wherein at least one among the 
first and second requests are directed to a Uniform Resource Locator associated 
with the trusted arbitrator. 

31 . (Original) The system according to claim 17, wherein during at least a part of 
a period between a time of the sending of the first request and a time of the sending 
of the first response, the trusted arbitrator stores the first request in an area 
associated with the connection entity, 

32. (Original) The system according to claim 17, wherein if the connection entity 
does not receive the first response within a predetennined period of a time of the 
sending of the second request, the sending of the second request is repeated. 

33. (Original) The system according to claim 17, wherein before a time of sending 
the first response, the trusted arbitrator sends a notice to the connection entity, said 
notice being in response to the first request. 
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34. (Original) The system according to claim 1 7, wherein the connection entity 
forwards at least a portion of the first request to the target entity, 

35. (Original) A system for establishing a secure connection comprising; 

a computer network employing an encryption scheme, said computer network 
including a target entity, a connection entity coupled to the target entity, and an 
access control mechanism coupled to the connection entity; 

a trusted arbitrator coupled to the access control mechanism; and 

a source entity coupled to the trusted arbitrator, the source entity employing 
the same encryption scheme, wherein the trusted arbitrator authenticates with the 
source entity and the connection entity, 

the trusted arbitrator receives a first request for establishing a secure 
connection from the source entity, the first request relating at least in part to the 
target entity, 

the connection entity transmits a second request to the trusted arbitrator, 
in response to the second request, the trusted arbitrator transmits a first 

response to the connection entity, the first response being associated at least in part 

with the first request, and 

in response to the first response, a secure connection between the source 

entity and the computer network is established using the encryption scheme. 



PAGE 12/19 * RCVD AT 0/0/2004 5:49:57 PM [Eastern Daylight Time] ' 8VR:U8PTO-EFXRF-1/0 * DNI8:8729308 * C8ID:503 684 3243 * DURATION (mm-ss):08-10 



06/09/2004 14:50 FAX 503 684 3245 



BSTZ - LAKE OSWEGO 



09/604,184 

36. (Original) The system according to claim 35, wherein the secure connection 
between the source entity and the computer network is established between the 
source entity and the connection entity. 

37. (Original) The system according to claim 35, wherein the secure connection 
between the source entity and the computer network is established between the 
source entity and the target entity. 
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